Consolidated Bank of Kenya Limited was incorporated on 7th December, 1989 . This was in an effort to stabilise the financial sector through the acquisition of nine insolvent institutions and thereafter restructuring them into a viable, professionally run commercial bank. The Bank enjoys an independent, dynamic, result oriented culture and a flexible and innovative approach. We understand the markets in which our clients operate and offer a service built on personalised and specialised banking solutions. We offer one of the widest range of banking products and services in the market today. We realize that a growing business demands a lot of time and energy. We understand these challenges and continously develop flexible, innovative and convinient financial solutions to help our customers achieve personal and business success. With years of banking experience and special focus on SMEs, we are in a strong position to help growing businesses unlock their potential and sail through the complexities they may face. The bank is fully owned by the Government with the majority shareholding in the bank (78%) held by The National Treasury. The remaining shareholding is spread over twenty-five (25) parastatals and other quasi government organizations.Job Purpose Reporting to the Head of Internal Audit, the Information Systems Auditor will be responsible for reviewing and evaluating the automated information processing systems, related non automated processes and the interfaces between them to ensure that information system controls are in place and that laid down information system policies and procedures are adhered to. Key Responsibilities In charge of the Information System audit function of the Internal Audit Department. Develop and implement the annual Information Systems audit plan. Ensure that the Bank develops and maintains sound Information System policies and procedures that minimize risks without compromising efficiency. Assess the risks inherent in the bank’s information systems and recommend measures to mitigate them. Provide system investigation services whenever required. Evaluate the Bank’s compliance with internal information system policies, procedures and operating instructions. Conduct regular and surprise inspection of all procedures, policies and processes ensuring that they comply with all statutory requirements and best practice. Evaluate business continuity and disaster recovery including back up procedures, business continuity and disaster recovery plans, tests, sites, and usability. Evaluate and report on system infrastructure and life cycle management. Review system development, acquisition and maintenance. Ensure change management principles are followed. Provide support to other assurance processes to ensure the overall opinion incorporates the risks identified in the underlying information systems. Monitor the implementation & operation of defined controls and recommendations on an ongoing basis. Assist the Risk department with technical expertise to ensure ICT risks are well managed. Qualifications and Competencies Be a holder of a bachelor’s degree in Computer Science or IT related field. Should possess professional qualification in Certified Information Systems Auditor (CISA) and/or Certified Information Security Manager (CISM). Possession of other Cisco certifications such as CCNA and CCSP will be added advantage. Should have thorough knowledge of current auditing techniques and experience of the entire audit process. Should possess advanced ACL skills and/or other audit skills. Should have a minimum of five years’ experience in information systems audit. Should have excellent analytical skills and great attention to detail. Should have strong communication and presentation skills. Should have broad knowledge of information systems and operations in view of the internal audit objectives. Should be able to work independently, meet deadlines and obtain results.